From 7bf31f54b884d3b7804153a33ba01f5c15d79f0e Mon Sep 17 00:00:00 2001 From: Bernardo Damele Date: Thu, 6 May 2010 10:54:13 +0000 Subject: [PATCH] Updated history SGML file --- doc/history.sgml | 150 ++++++++++++++++++++++++++++++++--------------- 1 file changed, 103 insertions(+), 47 deletions(-) diff --git a/doc/history.sgml b/doc/history.sgml index dd2988d0c..5dca1744c 100644 --- a/doc/history.sgml +++ b/doc/history.sgml @@ -17,35 +17,92 @@ for the latest version. 2010 -... -... -... -... -... -... +March 14, release stable version of +sqlmap 0.8 featuring many features. Amongst these, support to +enumerate and dump all databases' tables containing user provided +column(s), stabilization and enhancements to the takeover functionalities, +updated integration with Metasploit 3.3.3 and a lot of minor features and +bug fixes. +January, Bernardo is to present at conference in Greece on June +2010. 2009 +December 18, Miroslav Stampar replies to my public call +for developers. He contributes actively in the development of sqlmap from +version 0.8 release candidate 2. + +December 12, Bernardo writes to the mailing list a post +titled highlighting the goals +achieved during these first three years of the project and launches a call +for developers. + +December 4, sqlmap-devel mailing list has been into +sqlmap-users . + +November 20, Bernardo and Guido present again their +research on stealth database server takeover at CONfidence 2009 in Warsaw, +Poland. + +September 26, sqlmap version 0.8 release candidate +1 goes public on the , with all the attack +vectors unveiled at SOURCE Barcelona 2009 Conference. These include an +enhanced version of the Microsoft SQL Server buffer overflow exploit to +automatically bypass DEP memory protection, support to establish the +out-of-band connection with the database server by executing in-memory +the Metasploit shellcode via UDF sys_bineval() (anti-forensics +technique), support to access the Windows registry hives and support to +inject custom user-defined functions. + +September 21, Bernardo and their research () at SOURCE Conference 2009 in Barcelona, Spain. + +August, Bernardo is accepted as a speaker to two others IT +security conferences, and . +This new research is titled Expanding the control over the operating +system from the database. + July 25, stable version of sqlmap 0.7 is out! +June 2, sqlmap version 0.6.4 has made it way to +the official Ubuntu repository too. + May, Bernardo presents again his research on operating system takeover via SQL injection at in Warsaw, Poland and at in London, UK. +May 8, sqlmap version 0.6.4 has been officially +accepted in Debian repository. Details on . + April 22, sqlmap version 0.7 release candidate 1 -is published, with all the attack vectors unveiled at Black Hat Conference. -This include execution of arbitrary commands on the underlying operating +goes public, with all the attack vectors unveiled at Black Hat Europe 2009 +Conference. +These include execution of arbitrary commands on the underlying operating system, full integration with Metasploit to establish an out-of-band -TCP connection, first publicly available exploit for MS09-004 and others +TCP connection, first publicly available exploit for Microsoft Security +Bulletin against Microsoft SQL Server 2000 and 2005 and others attacks to takeover the database server as a whole, not only the data from the database. -April 16, Bernardo his research (April 16, Bernardo his research (, ) at Black Hat Europe 2009 in Amsterdam, The Netherlands. The feedback from the audience is good and there has been some @@ -60,79 +117,77 @@ name="Front Range OWASP Conference 2009"> in Denver, USA. The presentation is titled SQL injection: Not only AND 1=1. February 24, Bernardo is accepted as a at with a presentation titled Advanced SQL injection exploitation to operating system full control. February 3, sqlmap 0.6.4 is the last point release -of 0.6: taking advantage of the stacked queries test implemented in 0.6.3, -sqlmap can now be used to execute arbitrarly any SQL statement, not only -SELECTs. Also, many features have been stabilized, tweaked and improved in -terms of speed in this release. +for 0.6: taking advantage of the stacked queries test implemented in 0.6.3, +sqlmap can now be used to execute any arbitrary SQL statement, not only +SELECT anymore. Also, many features have been stabilized, tweaked +and improved in terms of speed in this release. January 9, Bernardo SQL injection exploitation internals at a -Corporate event. +private event in London, UK. 2008 -December 18, to celebrate Bernardo's first daughter birthday, -sqlmap 0.6.3 is released featuring support to retrieve targets -from Burp and WebScarab proxies log files, support to test for stacked -queries ant time-based blind SQL injection, rough fingerprint of the web -server and web application technologies in use and more options to -customize the HTTP requests and enumerate further data from the database. +December 18, sqlmap 0.6.3 is released featuring +support to retrieve targets from Burp and WebScarab proxies log files, +support to test for stacked queries ant time-based blind SQL injection, +rough fingerprint of the web server and web application technologies in +use and more options to customize the HTTP requests and enumerate more +information from the database. November 2, sqlmap version 0.6.2 is a "bug fixes" release only. -October 20, sqlmap first point release, 0.6.1 goes +October 20, sqlmap first point release, 0.6.1, goes public. This includes minor bug fixes and the first contact between the tool and : an auxiliary module to launch sqlmap from within Metasploit Framework. -sqlmap goes public again. +The goes public again. September 1, nearly one year after the previous release, -sqlmap 0.6 comes to life featuring the first major code -refactoring, support to execute arbitrary SQL SELECT statements, more -options to enumerate and dump specific information are added, brand new -installation packages for Debian, Red Hat, Windows and much more. +sqlmap 0.6 comes to life featuring a complete code +refactoring, support to execute arbitrary SQL SELECT statements, +more options to enumerate and dump specific information are added, brand +new installation packages for Debian, Red Hat, Windows and much more. August, two public are created on SourceForge. -January, sqlmap development repository is moved away from -SourceForge and goes private. +January, sqlmap Subversion development repository is moved +away from SourceForge and goes private for a while. 2007 -December 15, Bernardo's first daughter is born and will -keep him quite busy for the next months. - -November 4, release 0.5 marks the end of the Spring -of Code contest participation. Bernardo has November 4, release 0.5 marks the end of the OWASP +Spring of Code 2007 contest participation. Bernardo has all the propsed objects which include initial support for Oracle, enhanced support for UNION query SQL injection and support to -inject on HTTP Cookie and User-Agent headers. +test and exploit injections on HTTP Cookie and User-Agent headers. June 15, Bernardo releases version 0.4 as a -result of the first Spring of Code milestone. This release features, -amongst others, improvements to the DBMS fingerprint engine, support to -calculate the estimated time of arrival, options to enumerate specific -data from the database server and brand new logging system. +result of the first OWASP Spring of Code 2007 milestone. This release +features, amongst others, improvements to the DBMS fingerprint engine, +support to calculate the estimated time of arrival, options to enumerate +specific data from the database server and brand new logging system. April, even though sqlmap was not and is not an OWASP project, it gets , amongst many other open source projects to SpoC 2007. +name="accepted">, amongst many other open source projects to OWASP Spring +of Code 2007. March 30, Bernardo applies to OWASP September, Daniele leaves the project, takes it -over. +url="http://bernardodamele.blogspot.com" name="Bernardo Damele A. G."> +takes it over. August, Daniele adds initial support for PostgreSQL and releases version 0.1. July 25, registers the sqlmap project on SourceForge and develops it on the -SourceForge Subversion repository. The skeleton is implemented and limited -support for MySQL added. +. The skeleton is implemented and +limited support for MySQL added.